|
RCP
4.0 Users Questions Menu
|
RCP Security
Tips List
of Categories
-
It's not recommended to us frontpage
...
We do not recommend the use of frontpage. Front
page automatically mess up any .htaccess file on
your server. Front page use also messes up your
RCP .htaccess file. Frontpage also makes many
unnecessary folders on your system. Hackers also
often try to take over your site by finding
leaks in your front page setup.
So we say use any HTML editor or ftp program but
not frontpage it is really not that good and it
can cause many problems. There are many other
programs that are far better and more easy to
use then frontpage.
Top
-
Tip - password protected folders .htpasswd
files
WARNING: Never place your .htpaswd files in your
/htdocs/ or /members/ or password protected
folder it self. The reason for this is that the
.htpaswd file is then to easy to find for any
hacker or abuser!!!
Always make sure that your .htpaswd files are
located in the folder bellow the /htdocs/ or
/Public/ folder or also a save location is
inside your cgi-bin folder. Hackers or anyone is
unable to steal your .htpaswd files if they are
located in the cgi-bin folder or bellow the
public web folder. You can also rename the
.htpaswd file to something harder to guess.
Like: .htpasswdxxx or
.passwordlist. The file will still work
as a .htpaswd file as long as the .htaccess file
contains the same name. Renaming the file will
even make it harder to be found.
Top
-
Tip - Related to the robots.txt file
Robot Control Pro takes over the full robots.txt
file proccess and actually improves the
proccess. With RCP installed on your website you
no longer need to have a robots.txt file in your
web public /folder/ or /htdocs/ folder. Your
standard robots.txt file rules should be added
to the RCP file named: robottxt.out located in
your cgi-bin/robot/ folder. This file is
basically your new robots.txt file. RCP will
feed the rules in this file to all robots
visiting your site. The robots rules still work.
O only your robots.txt file has a new name:
robottxt.out and is now located in your
cgi-bin/robot/ folder.
Top
-
Get the best results out the RCP trap
files
RCP uses a powerful and unique trap file system
as a second system to stop data/file thieves,
abusers, people sneaking around in directories,
page rippers. It will also pick up and banned
robots from collecting email address. NO more
SPAM! This is not the only method for RCP to
stop abusers. RCP use five different systems at
once. This makes it impossible to by pass RCP.
Ten police cops protecting your site is more
efficient then one.
During installation you are required to upload a
small set of RCP trap files to your public web
folder (htdos, www, public folder). These files
will stop 90% of all abusers other 10% are pict
up by one of the other technics in RCP to stop
abuse and security risks. Of course you may
upload the RCP trap files also to other folder
where you think they can be useful. Keep in mind
that any one or program requesting a trap file
as URL or donwload one, or automatically index a
folder containing a trap file will be punished,
reported and banned.
Use the RCP trap files smart. Use them to
protect content as well. Sample: You can place a
JPEG trap file in a folder that contains many
images in order to avoid the use of programs to
download all your images at once.(Bandwidth
risk) It will also protect files that should not
be found as no page links to them. Sample 2)
Upload a email trap file to sub folders
containing HTML files with contact email
addresses. This will make sure any email
collecting robot that has not started his search
in your public web folder still get stopped.
This is not necessary but you can do this to be
more secure. Uploading the required trap files
to your public folder is basically enough. How
ever it is not forbidden to use the powerful
trap files also in other folder on your server.
Your are not limited on the use of the trap
files. Think about it and you might come up with
more possibilities for the use of the trap files
as they are really powerful and do work.
More details on the trap files see also section:
RCP .htaccess File of this FAQ page.
Top
-
We don‚t recommend the use of Microsoft
Front Page!
The reason for this is because front page
creates a high amount of unnecessary files and
folders on your server. Also the use of front
page will destroy the custom coding in the RCP
.htaccess file. Simple as Front Page thinks he
owns the .htaccess file for his own code only.
Front Page is not user-friendly for the use of
your .htaccess files. There are many better and
more user-friendly HTML editors ( programs to
built websites) then Front page. We do not
recommend the use of Front Page as it can do
serious harm to your website .htaccess file.
Top
|
..
|
|
